Under Armour Data Breach 2026: 72 Million Customers Exposed in Massive Leak
Under Armour is investigating a massive data breach affecting 72 million individuals. While the company disputes the scale, the Everest ransomware gang has leaked customer data.
72 million individuals just received a notification they dreaded. Their personal information is reportedly sitting on a hacker forum after a massive Under Armour data breach. While the company is trying to downplay the severity, the sheer volume of the leak has sent shockwaves through the cybersecurity community.
Under Armour Data Breach 2026: Timeline of the Attack
The Everest ransomware gang originally claimed responsibility for the breach back in November. However, it wasn't until this week that the scale became public. According to reports from TechCrunch, the breach notification service Have I Been Pwned (HIBP) obtained the dataset and began alerting users whose emails were found in the cache.
| Data Type | Stolen Details |
|---|---|
| Personal Info | Names, Email addresses, Genders, Dates of birth |
| Location | Postcodes and ZIP codes |
| Activity | Purchase history and employee records |
The Company's Rebuttal
Under Armour spokesperson Matt Dornic didn't mince words, calling the claim of 72 million compromised accounts "unfounded." He stated that while an unauthorized third party obtained some data, the percentage of customers with "sensitive" information affected is "very small." Notably, the company claims no evidence suggests that payment systems or customer passwords were compromised.
This content is AI-generated based on source articles. While we strive for accuracy, errors may occur. We recommend verifying with the original source.
Related Articles
A new report in Science warns that AI swarms disinformation 2026 is becoming a reality, allowing one person to command thousands of AI agents to manipulate elections.
Explore the DHS ICE List doxing controversy where 4,500 employee profiles were compiled from public data. Is it a security breach or public info?
Ireland introduces the Communications Bill 2026, aiming to legalize government spyware use for encrypted data. Learn about the new surveillance powers and legal safeguards.
UStrive, an online mentoring platform, recently fixed a security lapse that exposed over 238,000 student records, including names and phone numbers, through a vulnerable GraphQL endpoint.
A new report in Science warns that AI swarms disinformation 2026 is becoming a reality, allowing one person to command thousands of AI agents to manipulate elections.
Explore the DHS ICE List doxing controversy where 4,500 employee profiles were compiled from public data. Is it a security breach or public info?
Ireland introduces the Communications Bill 2026, aiming to legalize government spyware use for encrypted data. Learn about the new surveillance powers and legal safeguards.
UStrive, an online mentoring platform, recently fixed a security lapse that exposed over 238,000 student records, including names and phone numbers, through a vulnerable GraphQL endpoint.